Lavasoft Malware Labs Blog
Malware Encyclopedia
Detect: FraudTool.Win32.FakeRean
Platform: Win32
Type: Worm
Size: 868864 bytes
Extracted size: ~6266 KB
Language: Delphi
md5: A0E59B1747C0A50731A1D74E3C274198
sha1: 79C242DF2AEAAB26DA26EEB02AC1FEB676E129FD
Summary
This is a Trojan that imitates the work of the antivirus program to obtain a user's fee for detecting and deleting non-existent threads.
Detect: Trojan.Win32.Jpgiframe
Platform: HTML
Type: Trojan
Summary
It is a Trojan program which opens various web pages in the browser without user knowledge.
Detect: Email-Worm.Win32.Brontok.a
Platform: Win32
Type: Worm
Size: 45417 bytes
Packer: MEW
Language: VisualBasic
md5: 41bc917a697ab13ecb4c97496300080b
sha1: 3963b429bf098b194c49a83a4360d65b5c56c746
Summary
It is an email worm spreading via the Internet by attaching a copy of its executive file to the infected emails. For mailing, the worm uses addresses found on the infected computer.
Detect: Trojan.Win32.Rimecud.m
Platform: Win32
Type: Trojan
Size: 140288 bytes
Packer: unknown
Unpacked size: ~81KB
Language: C++
md5: 5A9A4024F263E0D79C8CF9381DCDF06A
sha1: 0C1C857386D7C2A4BF3C62CC69C110D38D35045F
Summary
It is a Trojan program which performs destructive activities on the User PC.
Detect: Exploit.PDF.CVE-2011-2437
Platform: PDF
Type: Exploit
Size: <depends on document size>
Summary
It is an Exploit which uses vulnerability in Adobe Acrobat and Adobe Reader to execute a random code. It is a PDF document.
Detect: Adware.Pinball Corporation
Platform: Win32
Type: Adware
Size: 207544 bytes
Packer: UPX
Unpacked size: 449 KB
Language: C++
md5: 8C09805A8EB78C9917BDDEDCF7F45D62
sha1: 21ABC57D515487595CA17E63CCD98C096D86C52F
Summary
It is an advertising software designed to redirect requests to other web resources.
Detect: Virus.Win32.Neshta.a
Platform: Win32
Type: Virus
Size: 41472 bytes
Language: Delphi
md5: BC93F4F527B58419EF42F19DB49F64A8
sha1: 2650A73B61577CFC0C0D80A7F38103D65388D808
Summary
This is a malicious program which infects executive files.
Detect: Virus.Win32.Ramnit.a
Platform: Win32
Type: Virus
Size: 103936 bytes
Language: C++
md5: CDF0778E1B80069D137A3E7A0C7C787F
sha1: E1826123B190C1FB3D11BBEA33EF6D1CCEABAD43
Summary
It is a malicious program which infects files on a User's PC.
Detect: Exploit.MIDI.CVE-2012-0003
Platform: MIDI
Type: Exploit
Size: 16447 bytes
md5: 17CA100FA300A1529AA9B144F02A1B7B
sha1: 406D33B0B284C3D33900050D9B188390431263EA
Summary
It is an exploit which downloads other malicious programs from the Internet and launches them for execution without the user’s knowledge.
Detect: Trojan-Clicker.HTML.IFrame
Platform: HTML
Type: Trojan
Language: HTML
Summary
This Trojan opens a range of Internet sites without the knowledge or consent of the user. It is an HTML page which contains IFrame tag.
Detect: Trojan.JS.PornPopUp.a
Platform: JS
Type: Trojan
Size: 1838 bytes
Language: Java Script
md5: D4C78EF9B5EC79A947D509B149B884FA
sha1: 54F2B99C60B1D77882FA2D724951FDAACB3A38A7
Summary
This is a Trojan program which opens various web pages in the browser. This Trojan is represented by the malicious JavaScript.
- ‹‹
- 680 of 680